Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C46582FED2EF11EFB6206261762E951A.roa
File: C46582FED2EF11EFB6206261762E951A.roa (raw, json)
Hash identifier: BDcsazadK6zp5vFXymCtnEKtacV1bMCVQCejiyg1iMQ=
Subject key identifier: 29:96:0A:91:C6:F5:A8:56:9D:71:B6:1B:89:47:A0:74:7B:D4:D8:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 010777
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C46582FED2EF11EFB6206261762E951A.roa
Signing time: Wed 15 Jan 2025 03:21:11 +0000
ROA not before: Wed 15 Jan 2025 03:21:07 +0000
ROA not after: Sat 03 Jan 2026 03:21:07 +0000
asID: 984
IP address blocks: 156.241.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67447 (0x10777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 03:21:07 2025 GMT
Not After : Jan 3 03:21:07 2026 GMT
Subject: CN=678729a6-3c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9c:b4:e2:00:3f:32:5c:f9:ab:a8:7f:61:c2:
ba:ba:b5:1b:ba:25:20:de:4b:e5:3e:71:6c:38:01:
48:4b:8b:74:78:a8:a8:b3:4e:e6:75:5a:15:0a:4c:
95:17:63:1f:98:5c:e8:57:d2:3e:d3:2a:88:06:ab:
13:fa:ef:ac:a5:35:d9:d2:9b:40:e9:bf:08:1e:86:
04:3e:da:41:13:a3:96:08:40:3c:1c:0d:c9:81:9e:
f6:d0:ad:30:78:a8:b9:83:a5:03:2f:2c:08:0d:fb:
5b:be:66:08:1e:26:f1:d3:2f:6b:e0:80:a4:5d:ca:
b9:e6:e4:f5:79:a5:ee:fe:16:0d:fd:a7:91:33:5d:
42:3c:6f:e4:5a:32:45:e2:55:76:34:fd:59:91:f5:
ca:fd:f2:56:70:4c:17:ca:5a:da:65:9b:05:23:1a:
75:17:b0:98:6c:ce:6a:88:af:de:d2:24:10:60:b5:
29:1a:5e:6a:dd:e8:fa:08:46:14:16:16:29:4e:85:
37:76:76:93:f9:01:0a:41:ea:54:84:cc:0a:5d:07:
bd:9b:8f:0b:2c:4b:7a:6a:03:c2:c9:c8:e7:ba:52:
6e:f7:95:28:0a:8e:8b:52:2b:65:32:a8:32:8f:45:
d3:bf:7c:78:08:2f:49:9e:dc:4d:19:3d:b3:cc:da:
1c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:96:0A:91:C6:F5:A8:56:9D:71:B6:1B:89:47:A0:74:7B:D4:D8:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C46582FED2EF11EFB6206261762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.241.193.0/24
Signature Algorithm: sha256WithRSAEncryption
52:0e:53:a3:0d:0e:dd:0e:c0:75:d8:15:9f:a0:73:32:95:21:
51:b1:aa:c7:6d:f3:b8:11:45:73:3d:ca:52:8b:c7:a3:ba:d1:
8f:2f:14:20:f5:f0:c5:75:3b:56:e3:11:1e:27:3f:87:3d:69:
f2:7c:3a:e8:d7:c1:ff:2c:ca:34:6f:6f:66:6e:54:fa:28:53:
d2:64:5d:1c:32:a9:b4:13:39:61:38:6e:dc:7b:d3:c4:33:77:
1f:64:a8:75:38:be:a6:81:0f:af:d6:c6:f6:cc:da:7a:0f:7a:
32:bc:43:63:f7:67:a6:3b:bb:9e:8c:cf:e1:b6:b9:dd:96:24:
ef:30:d5:5c:cf:a8:e5:6b:22:1e:11:66:e2:c5:12:6c:5d:94:
1a:df:fa:c7:2c:59:d5:b2:6f:7f:4d:f2:7c:36:30:f1:64:0e:
68:fb:59:d7:70:ee:e2:17:d5:e3:11:72:5d:e2:d7:24:4a:32:
a5:a4:fb:b6:e3:cc:91:eb:91:52:4b:17:18:2a:b6:2f:cf:e0:
af:e6:54:ff:6d:5e:f0:69:a8:45:89:36:3f:48:c9:fa:2e:a3:
9e:51:b1:38:66:fb:2c:c7:aa:37:2a:a7:74:7f:24:fe:fe:8d:
92:b2:0e:37:cc:dc:d9:79:5f:a6:a2:12:de:b4:6d:2e:cf:9e:
32:4a:a8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:42:52 2025 by rpki-client